WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
7,877 Commits
4 Branches
160 Tags
408 MiB
Commit Graph

7877 Commits (997a3773103c22f5b626ba9ee20faefc30b6aad8)

Author SHA1 Message Date
John Safranek 997a377310 Prime Number Testing 
1. In wc_DhGenerateParams(), changed the call to mp_prime_is_prime() to
mp_prime_is_prime_ex().
2. In wc_MakeDsaParameters(), changed the call to mp_prime_is_prime() to
mp_prime_is_prime_ex().
3. Added wc_CheckProbablePrime_ex in RSA that also takes an RNG to call
mp_prime_is_prime_ex(). If RNG is NULL, call mp_prime_is_prime().
4. Rewrite wc_CheckProbablePrime() in terms of
wc_CheckProbablePrime_ex().
 2018-07-12 15:00:13 -07:00
John Safranek d486df50aa fix an error where mp_copy was used instead of mp_sub_d 2018-07-12 11:03:41 -07:00
John Safranek 5908230d20 Prime Number Testing 
1. Fixed variable name typo in DH for the FFDHE 8192-bit q value.
2. Updated some error strings in wolfSSL_BN_is_prime_ex().
3. Changed the calls to mp_prime_is_prime_ex() in fp_randprime() and
mp_randprime() so they go back to the 8 rounds of MR, which is more than
adequate in this situation.
 2018-07-11 16:24:41 -07:00
John Safranek 0e06f6413d Prime Number Testing 
1. Update the function wolfSSL_BN_is_prime_ex to use mp_prime_is_prime_ex.
2. Modified fast and normal mp_prime_is_prime_ex() to use random numbers
that are in the range 2 < a < n-2.
 2018-07-10 14:30:53 -07:00
John Safranek f1c3098bdc Prime Number Testing 
Made modifications to the primality testing so that the Miller-Rabin tests check against up to 40 random numbers rather than a fixed list of small primes.
 2018-07-09 16:33:26 -07:00
toddouska 87499aa7bd
Merge pull request #1668 from ejohnstown/ignore-file 
Ignore File
 2018-07-09 11:18:44 -07:00
toddouska 376a4d3ca8
Merge pull request #1666 from dgarske/fix_always_verify 
Fix for building with `WOLFSSL_ALWAYS_VERIFY_CB`
 2018-07-09 11:13:28 -07:00
toddouska 90cf4ad7ad
Merge pull request #1648 from embhorn/pkcb 
Add PK_CALLBACK support for RSA/ECC verify to ConfirmSignature
 2018-07-09 11:05:48 -07:00
David Garske 9c2a5d2906 Further simplification of the PK verify wrapping to avoid malloc/free. Thanks Todd! 2018-07-06 16:21:43 -07:00
John Safranek ed17963f21 Add fipsv2.c to the gitignore file. 2018-07-06 16:08:16 -07:00
toddouska 2e2a502683
Merge pull request #1659 from ejohnstown/configure-update 
Configure Update
 2018-07-06 16:08:11 -07:00
David Garske 85d58cbf8c Fix for building with `WOLFSSL_ALWAYS_VERIFY_CB`. 2018-07-06 15:31:52 -07:00
David Garske 595beb3fec Fixup for the removal of `const`. 2018-07-06 09:35:00 -07:00
David Garske 32f1b0a9c2 Added separate context for each `SignatureCtx` verify callback. Added missing `ssl` info to callback context. 2018-07-06 09:28:46 -07:00
David Garske 9bf8122af7
Merge pull request #1660 from JacobBarthelmeh/ARMv8 
adjust macro guards for additional functions
 2018-07-06 09:02:35 -07:00
toddouska 8ba4dda8a8
Merge pull request #1663 from dgarske/lib_isolate 
Cleanup old `WOLFSSL` and `WOLFSSL_CTX` references in wolfCrypt
 2018-07-05 16:09:56 -07:00
Eric Blankenhorn 80f98f7ab7
Merge pull request #1664 from JacobBarthelmeh/Testing 
keep length value after call to wc_BerToDer
 2018-07-05 18:05:28 -05:00
David Garske 3cbcc872c1 Improved PK callback support for ConfirmSignature so certificate verification uses the callbacks. Retained wolfSSL/wolfCrypt isolation (I.E. no wolfSSL references from wolfCrypt). 2018-07-05 14:04:06 -07:00
Jacob Barthelmeh e44cb91a3b keep length value after call to wc_BerToDer 2018-07-05 14:35:35 -06:00
David Garske 0e8e3b7441 Cleanup old `WOLFSSL` and `WOLFSSL_CTX` references in wolfCrypt that are no longer required. 2018-07-05 09:58:47 -07:00
Jacob Barthelmeh c8e118cd12 adjust macro guards for additional functions 2018-07-03 16:52:29 -06:00
John Safranek af65a9520a Configure Update 
Change the increment of the number of jobservers to be more posixish.
More compatible with HPUX's ksh.
 2018-07-03 14:42:51 -07:00
toddouska ae54bae2fa
Merge pull request #1654 from SparkiDev/tls13_stapling 
TLS 1.3 OCSP Stapling
 2018-07-03 12:56:28 -07:00
toddouska f809a6a17b
Merge pull request #1651 from dgarske/pkcs7_dynamic 
Added PKCS7 dynamic allocation support
 2018-07-02 16:26:03 -07:00
toddouska fbd5a4f67f
Merge pull request #1650 from dgarske/fix_armv8_aes 
Fix ARMv8 AES code build error
 2018-07-02 16:23:32 -07:00
toddouska 77f11a6be9
Merge pull request #1649 from embhorn/zd4043 
Fix for memory leak in wolfSSL_BN_hex2bn
 2018-07-02 16:22:57 -07:00
toddouska 9f35d211e0
Merge pull request #1644 from JacobBarthelmeh/Compatibility-Layer 
add ca when getting chain from x509 store
 2018-07-02 16:22:11 -07:00
toddouska e17a16a45a
Merge pull request #1600 from dgarske/lighttpd 
Changes to support Lighttpd 1.4.49
 2018-07-02 16:18:41 -07:00
JacobBarthelmeh df9ed87c5f
Merge pull request #1652 from ejohnstown/dhtestleak 
Fixed a memory leak in the wolfCrypt test for DH key generation.
 2018-07-02 17:05:22 -06:00
Sean Parkinson 52d9803d72
Merge pull request #1657 from JacobBarthelmeh/Testing 
casts for tls 1.3 windows warnings
 2018-07-03 08:25:01 +10:00
John Safranek cf191a4d96 Fixed a memory leak in the wolfCrypt test for DH key generation. 2018-07-02 13:31:13 -07:00
Jacob Barthelmeh 201217bd97 casts for tls 1.3 windows warnings 2018-07-02 13:55:38 -06:00
David Garske 2bd4fb110c Fix additional cases for use of unititlized PKCS isDynmaic in unit test. 2018-07-02 10:24:41 -07:00
David Garske fb3d3dce0e Fix for use of unititlized `PKCS7.isDynamic` case in unit test. Added return code checks for `wc_PKCS7_Init`. 2018-07-02 09:38:14 -07:00
Jacob Barthelmeh a9ff79e321 check return value 2018-07-02 10:10:30 -06:00
Sean Parkinson 0bf3a89992 TLS 1.3 OCSP Stapling 
Introduce support for OCSP stapling in TLS 1.3.
Note: OCSP Stapling v2 is not used in TLS 1.3.
Added tests.
Allow extensions to be sent with first certificate.
Fix writing out of certificate chains in TLS 1.3.
Tidy up the OCSP stapling code to remove duplication as much as
possible.
 2018-07-02 16:59:23 +10:00
David Garske 3adbb07abe Comment correction. 2018-06-29 15:07:56 -07:00
David Garske 733cb74ea8 Updated all PKCS7 XMALLOC/XFREE to use heap pointer (even small stack). 2018-06-29 15:05:37 -07:00
David Garske 07401d909c Added support for dynamic allocation of PKCS7 structure using `wc_PKCS7_New` and `wc_PKCS7_Free`. Updated the test examples to use the dynamic method. Add API unit test for `wc_PKCS7_New`. 2018-06-29 15:04:28 -07:00
toddouska 33b72a3dfe
Merge pull request #1647 from ejohnstown/akid-not-crit 
Add error case for critical Auth Key ID extension
 2018-06-29 10:41:04 -07:00
David Garske 44c4e33290 Fix ARMv8 AES code to use the shared aes.h `CTR_SZ` and `GCM_NONCE_MID_SZ`. 2018-06-29 10:22:25 -07:00
Eric Blankenhorn ebb3eb87d1 Update from review 2018-06-29 11:02:10 -05:00
JacobBarthelmeh 42ece70ff2
Merge pull request #1635 from ejohnstown/rpm-fixes 
RPM Fixes
 2018-06-29 09:44:11 -06:00
Eric Blankenhorn c6890d518e Fix resource leak in wolfSSL_BN_hex2bn 2018-06-29 09:44:01 -05:00
toddouska 54f2c3fe18
Merge pull request #1646 from dgarske/stm32l4_iar 
Added support for the STM32L4 and fixed mixed enum warnings
 2018-06-28 15:34:33 -07:00
toddouska b4da4340a1
Merge pull request #1640 from SparkiDev/tls13_nb 
Fix non-blocking and buffered I/O
 2018-06-28 15:32:42 -07:00
toddouska ea32f2dbef
Merge pull request #1638 from SparkiDev/nginx-ocsp 
Fix support for OCSP and Nginx
 2018-06-28 15:31:18 -07:00
Jacob Barthelmeh e204b19923 add statusCb variable to OPENSSL_EXTRA build 2018-06-28 14:36:15 -06:00
John Safranek 6fa92fdd71 Add error case for critical Auth Key ID extension 2018-06-28 13:03:16 -07:00
David Garske cd2971fb93 Abstracted code for setting options mask to improve `wolfSSL_CTX_set_options`, so it doesn't require allocating a WOLFSSL object. 2018-06-27 21:30:25 -07:00